Set up a bucket for full packet captures

Before you can begin using a bucket, you must first enable destinations.

Refer to the Amazon S3 or Google Cloud Storage documentation and follow the steps for those specific services.

1. Log in to your Cloudflare dashboard Open external link and select Magic Transit.
2. On the Magic Transit page next to Packet captures, select Start a capture.
3. From the Packet captures page, select the Buckets tab.
4. Select Add a bucket.
5. Under Bucket configuration, select a bucket service and select Next.
6. Enter the information related to your bucket for your service provider.
7. When you are done, select Next.

The Prove ownership step of the Bucket configuration displays.

The bucket field should be the URI of the bucket. For Amazon S3, the bucket field is in the form s3://<bucket-name>/<directory>?region=<bucket-region>, and for Google Cloud Storage the form is gs://<bucket-name>/<directory>.

Ownership challenge request example
curl -X POST https://api.cloudflare.com/client/v4/accounts/${account_id}/pcaps/ownership \
-H 'Content-Type: application/json' \
-H "X-Auth-Email: ${email}" \
-H "X-Auth-Key: ${auth_key}" \
-d '{
       "destination_conf": "'${bucket}'"
}'

The response shows the filename of the ownership-challenge text file placed within the bucket. Find the file in your bucket and copy the contents of the file.

Ownership challenge response example
{
  "result": {
    "id": "cc20c2d6c62e11ecbe646b173af3b6b9",
    "status": "pending",
    "submitted": "2022-04-22T18:54:13.397413Z",
    "validated": "",
    "destinaton_conf": "gs://bucket-test",
    "filename": "ownership-challenge-1234.txt"
  },
  "success": true,
  "errors": [],
  "messages": []
}

Validate the bucket by inserting the copied text in the ownership_text below:

Bucket validation example
-
curl -X POST https://api.cloudflare.com/client/v4/accounts/${account_id}/pcaps/ownership/validate \
-H 'Content-Type: application/json' \
-H "X-Auth-Email: ${email}" \
-H "X-Auth-Key: ${auth_key}" \
-d '{
       "destination_conf": "'${bucket}'",
       "ownership_challenge": "'${ownership_text}'"
}'

Bucket validation response
{
  "result": {
    "id": "cc20c2d6c62e11ecbe646b173af3b6b9",
    "status": "success",
    "submitted": "2022-04-22T18:54:13.397413Z",
    "validated": "2022-04-27T14:54:46.440548Z",
    "destinaton_conf": "gs://bucket-test",
    "filename": "ownership-challenge-1234.txt"
  },
  "success": true,
  "errors": [],
  "messages": []
}

If the status shows success, the bucket is configured and ready to use.

1. From the Prove ownership step of the Bucket configuration, locate the Ownership token field.
2. In the Ownership token field, enter the ownership token for your service provider.
3. When you are done, select Create. The Packet captures page displays.

The Buckets tab displays a list of the buckets associated with your account. Refer to the Status column to see the status of your bucket configuration.

Bucket list request example
curl -X GET https://api.cloudflare.com/client/v4/accounts/${account_id}/pcaps/ownership \
-H 'Content-Type: application/json' \
-H "X-Auth-Email: ${email}" \
-H "X-Auth-Key: ${auth_key}"

Bucket list response example
{
  "result": [
    {
      "id": "9a993aa6c58711ec89d3037647342e63",
      "status": "success",
      "submitted": "2022-04-26T16:58:24.550762Z",
      "validated": "2022-04-26T17:01:18.426458Z",
      "destinaton_conf": "s3://test-bucket?region=us-east-1",
      "filename": "ownership-challenge-1234.txt"
    },
  ],
  "success": true,
  "errors": [],
  "messages": []
}

1. Log in to your Cloudflare dashboard Open external link and select Magic Transit.
2. On the Magic Transit page next to Packet captures, select Start a capture.
3. From the Packet captures page, select the Buckets tab.

The list of buckets associated with your account displays.